No Script allows JavaScript, Java and other executable content to run only from trusted domains of your choice, say your home-banking web site, and guards the "trust boundaries" against cross-site scripting attacks (XSS). This is the most important feature of this.

Such a preemptive approach prevents exploitation of security vulnerabilities (known and even unknown!) with no loss of functionality…

Experts do agree: Firefox is really safer with NoScript

NoScript works with Firefox 1.5 to 3.*. NoScript can be installed from the following firefox addon website:

https://addons.mozilla.org/en-US/firefox/addon/722

Browse the URL from Firefox and click Install Now button. Once installed click "Restart Firefox" button for the addon to become active.

NoScript maintains a whitelist and it is important that you add your trusted sites in the white list to ensure proper functioning of the website. To do this, add the NoScripts Toolbar from View – Toolbars – Customize, select NoScripts icon and drag it to the Navigation toolbar.

Now, click on the NoScripts button and click Options, select Whitelist.

Add the website address of all your trusted websites. It allows you to Import and Export list as well.

Obvious, there is always going to be some website you don't remember. When you browse a trusted website (not added to the whitelist), a toolbar pops at the bottom of the website with an options button. Click the button and allow the website. Or if the site is not what you thought it was, then mark it as untrusted.

For example, try browsing a website like www.google.co.uk, you can see it blocking the scripts running from the website. A toolbar appears in the bottom of the page with an options button. Click the button and allow the domain, if you think google is a trusted site

Now, that to me is your browser, your internet, your security while browsing in your control.

A great work by Giorgio Maone.

Firekeeper is an Intrusion Detection and Prevention System for Firefox. It is able to detect, block and warn the user about malicious sites.

Firekeeper uses flexible rules similar to Snort ones to describe browser based attack attempts. Rules can also be used to effectively filter different kinds of unwanted content.

Other features of Firekeeper include:

• Ability to scan incoming Firefox traffic – HTTP(S) response headers, body and URL and to cancel processing of suspicious responses.
• HTTPS and compressed responses are scanned after decryption/decompression.
• Very fast pattern matching algorithm (taken directly from Snort).
• Interactive alerts that give an ability to choose a response to detected attack attempt.
• Ability to use any number of files with rules and to automatically load files from remote locations.

Download the newest Firekeeper release. Note: This is an alpha release which main purpose is to get feedback from users about Firekeeper's functionality and to test if Firekeeper works well on various different systems.
After installing visit a page with some tests, Firekeeper should display an alert for every link on this page.

Most of us would have thought of and used Firefox only as a browser. But, do you know it can well act as a Security application? That is all about FireCAT.

FireCAT is a Firefox Framework Map collection of the most useful security oriented extensions. It now has 60 extensions.

Changes for FireCAT 1.2

 Renamed subcategory "Social Engineering" to "Data mining"
 Bibirmer updated location (thanks to Zagrodzki Krzysztof from Telekomunikacja Polska)

 Kev Orrey added 4 extensions (Thanks Kev)

• Added Oracle OraDB Error Code Look-up (to subcategory Database)
• SQL connection (to subcategory Database)
• MySqlSidu – MySQL client (to subcategory Database)
• iMacros (to new subcategory Misc -> Automation)

 Claus Valca added 2 extensions (Thanks Claus)

• Enhanced History Manager (to new subcategory Misc -> Logs / History)
• Slogger (to new subcategory Misc -> Logs / History)

 Added Gnosis (to subcategory Data mining)
 Fixed FireGPG extension name

The downloads are available here,

FireCAT 1.2 Source (FreeMind) (Zip – 3.9 kb)

FireCAT 1.2 HTML Browsable (Zip – 76.4 kb)

FireCAT 1.2 PDF (PDF – 164.7 kb)